User's Manual
176 Using the CMC Web Interface
To obtain a secure server certificate for CMC, you must submit a Certificate
Signing Request (CSR) to a certificate authority of your choice. A CSR is a
digital request for a signed, secure server certificate containing information
about your organization and a unique, identifying key.
When a CSR is generated from the Generate Certificate Signing Request
(CSR) page, you are prompted to save a copy to your management station or
shared network, and the unique information used to generate the CSR is
stored on CMC. This information is used later to authenticate the server
certificate you receive from the certificate authority. After you receive the server
certificate from the certificate authority, you must then upload it to CMC.
NOTE: For CMC to accept the server certificate returned by the certificate
authority, authentication information contained in the new certificate must match
the information that was stored on CMC when the CSR was generated.
CAUTION: When a new CSR is generated, it overwrites any previous CSR on
CMC. If a pending CSR is overwritten before its server certificate is granted from a
certificate authority, CMC does not accept the server certificate because the
information it uses to authenticate the certificate has been lost. Take caution
when generating a CSR to prevent overwriting any pending CSR.
To generate a CSR:
1
From the
SSL Main Menu
page, select
Generate a New Certificate
Signing Request (CSR)
, and then click
Next
. The
Generate Certificate
Signing Request (CSR)
page displays.
2
Type a value for each CSR attribute value.
3
Click
Generate
. A
File Download
dialog box appears.
4
Save the
csr.txt
file to your management station or shared network.
(You may also open the file at this time and save it later.) You must later
submit this file to a certificate authority.